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Method for Adapting a Computer -to -Computer Communication Protocol 
For Use in an industrial control System 

Background of the Invention 

1 . Technical Field 

The present invention pertains to the field of 
industrial control automation. More particularly, the 
present invention pertains to communication over a network 
between a programmable logic controller (PLC) of an 
industrial control system and network I/O devices connected 
to control and monitoring elements of the industrial control 
system, as well as communication between different PLCs of a 
distributed industrial control system, 

2 . Description of Related Art 

As indicated in Fig. 1, an industrial control system 
often includes a programmable logic controller (PLC) for 
providing coordinated control of industrial control 
equipment, which includes various elements, that are often 
either sensors for providing inputs to the PLC or relays for 
receiving outputs from the PLC, each under the control of an 
element controller, and each connected to the network via a 
network I/O device. Industrial control using a PLC requires 
what is termed rapid scanning, meaning the continuous, rapid 
execution by the PLC of three main steps executed repeatedly: 
the acquiring of the status of each input to the PLC needed 
to execute so-called ladder logic for the process being 
controlled, the solving of the ladder logic to determine each 
output, and the updating of the status of the outputs. 
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The term ladder logic is used to indicate, in a form 
recognizable to early workers in the field of machine 
control, the expression of how the control elements of an 
industrial control system are to be controlled based on the 
monitoring elements of the industrial control system. The 
term ladder is used because the expression of the control 
logic is actually often in the form of a ladder, with each 
rung of the ladder having an output, i.e. a value for the 
required state of a control element, and one or more inputs, 
i.e. values corresponding to signals from monitoring 
elements. The inputs for an output may be in series, in 
which case they span a rung of the ladder, or in parallel, in 
which case the term ladder is not so apt. 

For effective industrial control, a PLC must communicate 
with the monitoring elements of the industrial control 
system, execute the ladder logic, and provide the outputs to 
the control elements at a rate that is adequate for effective 
industrial control. In this scanning (input, solve, output), 
usually only a small amount of information is passed between 
a PLC and an element (via the network I/O device for the 
element and the controller for the element) , but 
communication between the PLC and the element is usually- 
frequent, once each scan. Off-the-shelf networks, such as 
Ethernet -type networks, have so far been found inadequate; 
setting up a communication, as would normally be done using 
such a network, takes too long for industrial control. 

But from a cost standpoint, a general purpose off-the- 
shelf network is almost always preferable compared to a 
network designed specifically for a particular industrial 
control application, or even for a network designed for a 
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generic industrial control application. Moreover, a mature 
general purpose off-the-shelf network should be more reliable 
than a custom network. Finally, using a general -purpose off- 
the-shelf network for an industrial control system allows 
also connecting at the same time computing hardware and 
software not related to the industrial control system. Using 
an off-the-shelf general purpose network, such as Ethernet, 
makes possible a single network strategy for unified 
communications from device to site level. With Ethernet, 
even worldwide communications, at least for monitoring, are 
possible via connection to the Internet. 

What is needed is a way to operate a PLC over a general 
purpose off-the-shelf computer so as to allow scanning, i.e. 
execution of the three basic steps of a PLC, at a rate 
adequate for effective industrial control. 

Summary Of The Invention 

Accordingly, the present invention provides a method for 
adapting a general purpose query protocol for use by an 
industrial control system, the industrial control system 
including a controller for providing control, via a network 
for communication according to a model compatible with the 
Open Systems Interconnection (OSI) seven-layer model, over a 
process through at least one control element and at least one 
monitoring element, each coupled to the network via a network 
I/O device, the controller for performing communication with 
the network I/O devices according to the general purpose 
query protocol, the method comprising the step of: making a 
permanent -type connection to the network I/O device for the 
control element or for the monitoring element based on an 
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analysis of communication transactions between the controller 
and the control element or the monitoring element; thereby 
specializing the general purpose query protocol, which would 
ordinarily be used in computer- to- computer communications for 
making ad hoc queries of an external device, to use by the 
industrial control system in performing frequent 
communication of control and monitoring information between 
the controller and the control element or the monitoring 
element of the industrial control system. In one aspect of 
the present invention, the permanent -type connection is a 
connection, at a transport layer of the network communication 
model, that is left open for later use after an earlier use. 

In some applications, the method of the present 
invention further comprises the step of: making available use 
of a protocol in which a single command from the controller 
performs both a read register and a write register 
instruction. In one particular application of the invention, 
the protocol is compatible with the open MODBUS/TCP protocol. 

In addition to the above steps, the method of the 
present invention can comprise the steps of: rate tuning the 
controller so as to adjust how often to communicate with the 
control element or the monitoring element; and also duration 
tuning the controller so as to adjust how long to wait for 
the control element or the monitoring element to respond to a 
query. 

Brief Description of the Drawings 

The above and other objects, features and advantages of 
the invention will become apparent from a consideration of 
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the subsequent detailed description presented in connection 
with accompanying drawings, in which: 

Fig, 1 is a block diagram showing various components of 
an industrial control system connected via Ethernet, as an 
5 example of an off-the-shelf, general purpose network for 

which the method of the present invention is intended; 

Fig. 2 is a block diagram showing several industrial 
control systems all interconnected by Ethernet, so as to 
allow for communication between the PLCs of the different 
10 systems; 

O Fig. 3 is a flow chart showing the main steps in the 

routine operation of a PLC, both according to the present 
"1^ invention as well as the prior art; and 

ffi Fig. 4 is a schematic diagram showing the elemental 

15' steps that make up the overall method of the present 

1=^= invention for allowing use of an off-the-shelf general 

fj purpose network to connect the components of an industrial 

2 control system, and to also interconnect different 

industrial control systems, 

2 0 Best Mode For Carrying Out The Invention 

Referring now to Fig. 1, an industrial control system is 
shown implemented so as to rely on a general purpose off -the 
shelf network, here an Ethernet, and thus implemented in a 
way for which the method of the present invention is 
25 intended, a method by which a general purpose off-the-shelf 

network is used so as to provide communication between 
connected devices at a rate adequate for effective industrial 
control. Ethernet is used here as representing any network 
over which communication using TCP/IP can be performed, 

-6- 
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including any of the various kinds of networks that make up 
the Internet . 

Information sent over an Ethernet network is in the form 
of discrete packets defined according to the seven layer Open 
Systems Interconnection (OSI) standard for a communication 
model maintained by the American National Standards Institute 
(ANSI) , OSI is a layered communication model in which the 
highest layers take advantage of the capabilities of the 
lower layers to send information between nodes of a network. 
Information is passed between nodes in the form of discrete 
packets or frames containing data or control information 
supplied by the various OSI layers. The highest layers are 
the Application layer, the Presentation layer, and the 
Session layer which may include Telnet, File Transfer 
Protocol (FTP) , Simple Mail Transfer Protocol (SNMP) , and 
Domain Name System (DNS) . 

The Transport layer, a lower- level layer, typically 
includes the Transmission Control Protocol (TCP) along with 
the User Datagram Protocol (UDP) , among others, and provides 
for the delivery of the data to a desired device and the 
division of the information into discrete packets for 
sending. Received packets are reassembled in a like manner. 
The Network layer, another lower- level layer, routes messages 
back and forth between a source node and a destination node 
according to Internet Protocol (IP) addresses by adding an IP 
header to each packet indicating the source and destination 
IP addresses. The lowest layer is the physical link layer in 
which the hardware media access control (MAC) addresses are 
used. 
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The majority of networks operate according to a 
combination of TCP at the transport layer and IP at the 
network layer ; a combination that is commonly referred to as 
a TCP/IP. A more complete explanation of the operation of 
networks according to the TCP/IP protocol suite may be found 
in COMER, DOUGLAS E., Internetworking With TCP/IP Volume 1: 
Principles, Protocols, and Architecture, Third Edition, 19 95, 
Prentice-Hall, Englewood Cliffs, N.J. 

Fig. 1 shows an industrial control system as including 
the PLC connected, over a general purpose off the shelf 
network, to control or monitoring elements, namely, element 
1, element 2, and element 3. Each of the control or 
monitoring elements is shown as under the control of a 
controller, which is itself connected to the network via a 
network I/O device. 

Each of the control elements is a relay or actuator of 
one sort or another, and each monitoring elements is a 
sensor. Each sensor provides at least an input to the PLC. 
Each relay at least receives a command as an output of the 
PLC. 

Each element controller is shown in Fig. 1 as distinct 
from the control or monitoring element under its control; but 
an element controller is often integrated with the element 
under its control, or integrated with the network I/O device 
for the element . 

In the preferred embodiment, a PLC of an industrial 
control system uses a control language such as MODBUS for 
communicating with the control and monitoring elements of the 
system. In the present invention, preferably, the MODBUS 
command language is used, but not any corresponding MODBUS 
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network structure, i.e. the term ''MODBUS" is here used to 
refer only to the MODBUS language, i.e. the structure of the 
messages communicated between components of the industrial 
control system, and is not used to suggest any particular 
network protocol or hardware. 

Preferably, in using the method of the present 
invention, any firmware of the network I/O devices should be 
based on MODBUS TCP/IP, as defined by the Open MODBUS/TCP 
specification, release 1,0, published on the Internet (at 
http//www.modicon/openmbus/standards/openrabus .htm) on 29 
March, 1999, and hereby incorporated by reference. This 
standard defines how MODBUS commands and responses are 
delivered over the Internet to and from a MODBUS server using 
the well known port 502 . The firmware of the network I/O 
devices also preferably supports ICMP echo requests, such as 
PING. 

MODBUS/TCP is a variant of the MODBUS family of simple, 
vendor-neutral communication protocols intended for 
supervision and control of automation equipment. 
Specifically, it covers the use of MODBUS messaging in an 
^Intranet' or ^Internet' environment using the TCP/IP 
protocols. The most common use of the protocols at this time 
are for Ethernet attachment of PLC's, I/O modules, and 
^gateways' to other simple field buses or I/O networks. 

In MODBUS, data transactions are traditionally 
stateless, making them highly resistant to disruption from 
noise and yet requiring minimal recovery information to be 
maintained at either the source or destination of a data 
transaction. Programming operations, on the other hand, 
expect a connection-oriented approach, achieved in some 
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variants of MODBUS by an exclusive 'login' token, and on 
other MODBUS variants by explicit 'Program Path' capabilities 
for maintaining a duplex association until a connection is 
explicitly broken down. 

5 MODBUS/TCP handles both situations. A connection is 

easily recognized at the protocol level, and a single 
connection may carry multiple independent transactions. In 
addition, TCP allows a very large number of concurrent 
connections, so in most cases it is the choice of the 
10 initiator whether to reconnect as required or re-use a long- 

lived (permanent -type) TCP connection. 

""i In addition to supporting ICMP echo requests, the 

W firmware of a network I/O device preferably takes advantage 

in of how the open MODBUS/TCP specification allows use of a 

M simplified custom TCP/IP stack. To avoid fragmentation at 

f the IP level, a small TCP window size is, preferably, 

ru specified. Each TCP data segment preferably contains exactly 
one complete MODBUS command response. 

,3 Referring now to Fig. 2, a distributed industrial 

20 control system is shown as including an industrial control 

system 1, an industrial control system 2 and an industrial 
control system 3 all connected via Ethernet. In such a 
system, the PLC of one system communicates with PLCs of each 
of the other systems. The communication with control or 
25 monitoring elements of a particular system is only through 

the PLC for that particular system. 

Referring now to Fig. 3, the routine operation of a PLC 
for a particular industrial control system is shown as 
including first a step in which the so-called ladder logic 
30 for the industrial control system is executed. Fig. 3 shows 

-10- 
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that the ladder logic execution consists of reading all 
inputs, i.e., obtaining values corresponding to signals 
provided by each of the monitoring elements of the industrial 
control system; applying inputs for a rung of the ladder; 
solving for the outputs of the rung; and repeating this 
application of inputs to a rung and solving for the output 
for the rung until the entire ladder is solved; and then 
providing all outputs, i.e., making available values 
corresponding to what the required state of each control 
element should be according to the ladder logic just 
executed. 

Still referring to Fig. 3, after executing the ladder 
logic, input output servicing is performed, in which the 
outputs as a result of the executed ladder logic are put into 
effect (having been merely made available during execution of 
the ladder logic) , and then the inputs for each monitoring 
element are again acquired. 

Next, still referring to Fig, 3, in the case of a 
distributed industrial control system, a PLC performs 
whatever communication is programmed between it and each of 
the other PLCs of the distributed system. This communication 
typically includes values corresponding to the states of 
monitoring elements of the different systems. The values 
reported by monitoring elements of one industrial control 
system may be used in the ladder logic of another system. 

Referring now to Fig. 4, the method of the present 
invention for using a general purpose off the shelf network 
to provide the connectivity needed for an industrial control 
system, including a programmable logic controller and 
elements as shown in Figs. 1 and 2, is shown as including, in 

-11- 
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a preferred embodiment, four steps. A first step is for a 
user of the industrial control system to tune how long the 
PLC waits for a response to a query from a network I/O device 
for a control or monitoring element. Some monitoring and 
control elements take longer to respond to a query then 
others. To decrease the time it takes to complete a cycle of 
its routine operation, the method of the present invention 
provides for this tuning based on time to respond. By this, 
instead of waiting a constant amount of time, which would 
have to be long enough for the slowest element to respond, 
the PLC is configured to wait less time for a response to a 
query in the case of the more rapid responding elements. 

Still referring to Fig. 4, another step in the method of 
the present invention is to allow a user to tune how often to 
query a controller and monitoring element, based on the 
importance of having recent status information from the 
element. So the PLC may be tuned to communicate with a 
monitoring element less frequently where the monitoring 
element monitors aspects of the process that change 
relatively slowly, compared to a typical period for executing 
a cycle of operation by the PLC. 

Still referring to Fig. 4, another step of the method of 
the present invention is arrange (by suitable pre- 
programming) for the PLC to automatically use a permanent- 
type TCP connection to a control or monitoring element, based 
on an anlysis of the communications with the control of 
monitoring element, such as, e.g. whether the device is 
queried frequently enough to warrant maintaining the 
connection as a permanent -type connection. A peirmanent- type 
TCP connection is simply a TCP connection, between two 
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network I/O devices, that is not closed, at least not 
immediately, after it is first opened and transactions or 
data at hand are transmitted from one of the devices to the 
other. Instead, the connection is left open for later use in 
communicating between the two devices additional 
transactions or data. 

Thus, if the user tunes the system to query a particular 
element relatively frequently, the PLC will more likely 
establish a permanent type TCP connection to the element. 
Such connections have as a cost some overall slowing of the 
network communications, but serve on the time needed to 
perform each communication. In the case of Ethernet, 
establishing a permanent -type TCP connection eliminates three 
connect packets and three disconnect packets for every MODBUS 
command/ response pair. Usually, a general purpose off-the- 
shelf network will support only a limited number of 
permanent -type connections, and a PLC operating according to 
the present invention will automatically rank order its 
monitoring and control elements based on how frequently each 
is queried, so as to take maximum advantage of the limited 
number of permanent -type connections supported by the 
network. 

Still referring to Fig. 4, the method of the present 
invention also provides for allowing the user to select 
either of three protocols for a communication transaction 
between the PLC of an industrial control system and a control 
or monitoring element: in one protocol, a MODBUS command 
would call for a single read of a memory register of a 
device; in another protocol, a MODBUS command would call for 
a single write to a memory register of a device; and in a 
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third protocol, a single MODBUS command could call for both a 
read from a memory register and a write to a memory register. 

Then, for a control or monitoring element that allows 
both reading and writing, the user would select the 
read/write protocol, and would thus achieve a savings in time 
to complete a cycle of operation of the PLC. For some 
control or monitoring elements, information is either only 
read from a register or written to a register, and so for 
such elements, the user would select as the MODBUS protocol 
for a communication transaction either read register or write 
to register. 

For example, in case of a control element to be turned 
on, according to just executed ladder logic, if the control 
element confirms receiving a command to turn on, and if the 
control element supports read/write protocol, the user would 
have the PLC use the read/write protocol for the element. 
Then a single command to the control element to turn on (or 
off) would accomplish what would otherwise require two 
separate commands . 

It is to be understood that the above-described 
arrangements are only illustrative of the application of the 
principles of the present invention. Numerous modifications 
and alternative arrangements may be devised by those skilled 
in the art without departing from the spirit and scope of the 
present invention, and the appended claims are intended to 
cover such modifications and arrangements. 
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What is claimed is: 

1 1. A method for adapting a general purpose query protocol 

2 for use by an industrial control system, the industrial 

3 control system including a controller for providing control, 

4 via a network for communication according to a model 

5 compatible with the Open Systems Interconnection (OSI) seven- 

6 layer model, over an industrial process through at least one 

7 control element and at least one monitoring element, each 

8 coupled to the network via a network I/O device, the 

9 controller for performing communication with the network I/O 
l2 devices according to the general purpose query protocol, the 

method comprising the step of: 

i:| a) making a permanent- type connection to the network I/O 
a£i device for the control element or for the monitoring 

element based on an analysis of communication transactions 
M between the controller and the control element or the 

II monitoring element; 

17 thereby specializing the general purpose query protocol, 

ii which would ordinarily be used in computer-to-computer 

19 communications for making ad hoc queries of an external 

2 0 device, to use by the industrial control system in performing 

21 frequent communication of control and monitoring information 

22 between the controller and the control element or the 

23 monitoring element of the industrial control system. 

1 2. The method as claimed in claim 1, wherein the permanent- 

2 type connection is a connection, at the transport layer of 

3 the network communication model, that is left open for later 

4 use after an earlier use. 
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1 3. The method as claimed in claim 2, further comprising the 

2 step of : 

3 a) making available use of a protocol in which a single 

4 command from the controller performs both a read register 

5 and a write register instruction. 

1 4. The method as claimed in claim 3, wherein the protocol is 

2 compatible with the open MODBUS/TCP protocol. 

1 5. The method as claimed in claim 4, further comprising the 
□ steps of: 

3 a) rate tuning the controller so as to adjust how often to 

communicate with the control element or the monitoring 
^ element; and 

ffB b) duration tuning the controller so as to adjust how long to 
In wait for the control element or the monitoring element to 

l}k respond to a query. 

'^il G. The method as claimed in claim 5, wherein the network is 

2 an Ethernet -type network, 

1 7. The method as claimed in claim G, wherein the controller 

2 is a programmable logic controller (PLC) . 



"16- 



Attorney Docket No, 122.161 



Abstract of the Disclosure 

A method for adapting a computer-to-computer communication 
protocol, and especially TCP/IP, or any protocol implemented 
in a general purpose of f -the-sheslf network like Ethernet, for 
use in providing communication needed in an industrial 
control system, and especially an industrial control system 
using a programmable logic controller (PLC) , where there is 
frequent communication between the PLC and control or 
monitoring elements, the method aimed at allowing the PLC to 
perform scanning of its ladder logic at a rate adequate for 
effective industrial control. The method includes making 
permanent- type TCP connections between the PLC and a control 
element or a monitoring element, use of a protocol for 
communication with a control or monitoring element in which 
both a read register and a write register instruction is 
included in a single communication transaction, such as a 
MODBUS command, and tuning communication between the PLC and 
a control element or a monitoring element , 
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